Path: utzoo!censor!geac!torsqnt!news-server.csri.toronto.edu!cs.utexas.edu!samsung!usc!sdd.hp.com!ucsd!ucbvax!indsvax1.BITNET!MALRJ
From: MALRJ@indsvax1.BITNET
Newsgroups: misc.security
Subject: RE: break-in detection
Message-ID: <9011071737.AA18557@ucbarpa.Berkeley.EDU>
Date: 17 Oct 90 17:51:00 GMT
Sender: daemon@ucbvax.BERKELEY.EDU
Organization: The Internet
Lines: 8
Approved: security@rutgers.edu

This is too true.  At my site, users often go without passwords
if they are not installed... but I am in my own group and have my
umask set too 077, so...

A user shouldn't be entrusted with the security of a site, that is to say
more sites need more usage of groups etc.

C'est la vie... some sites just aren't secure, and never will be.